FSI, the leading healthcare CMMS provider, announces the completion of a System and Organization Controls (SOC) 2 Type 2 audit. This achievement comes after completing an SOC 2 Type 1 audit earlier this year. As one of the highest recognized standards of information security compliance in the world, certification of this level conveys the rigor of FSI’s security processes and data privacy procedures.
The SOC 2 standards are maintained by the American Institute of CPAs (AICPA). To pass a SOC 2 Type 2 audit, a third-party auditor evaluated the internal controls for information security, including FSI’s policies, procedures, and internal infrastructure around data security, firewall configurations, change management, logical access, backup and disaster recovery, security incident response, and other critical areas of business over a period of at least three months.
“Completing both SOC 2 Type 1 and Type 2 audits has been a team effort, all in the service of strengthening our policies and procedures for data privacy and security,” expressed Derek Smith, Director of Technology at FSI. “Healthcare systems prioritize the protection of sensitive patient information, and it should be no different for their facilities information as well. With the completion of the SOC 2 Type 2 audit, FSI is a proud CMMS provider that can emphasize our similar commitment to protecting data and the essential information of the organizations we partner with.”
Following through with a SOC 2 Type 2 audit reinforces FSI’s dedication and prioritization of data privacy and security, which are key for a company charged with protecting vital information about hospital facilities data. From floorplans to information about vital pieces of equipment, FSI’s CMMS products store data points on hospital operations that must be protected.
Launched in 2002, FSI was created by and for healthcare service professionals and engineers, offering a purpose-built CMMS specifically for healthcare-managed operations. FSI’s 1,000 plus hospital segments rely on a full suite of services and software that empowers their teams to use data to make smart decisions: including on-site data collection, barcoding, and CAD services.